.css-fb01ic.gbi--71092113-pipA8A8ox8KAUAErJSEMPo:before { opacity: 1; background-image: url('/static/53bd03ed16af54d28ac1f398324432d5/ca599/advancedbenefits.png'); }

Kenna Blog

Thoughtful perspectives on Modern Vulnerability Management.

Power Couple: Kenna’s Vulnerability Intel + ServiceNow Vulnerability Response

Every once in a while, two things come together and create something new. Abbott and Costello. Johnny and June. Fred and Ginger. The whole becomes greater than the sum of its parts.

Sign up to get the latest updates

March 2023 VOTM

March Vuln of the Month: CVE-2023-23529

Threat actors can exploit this Vuln of the Month simply by phishing users into downloading the wrong code. Learn how to tackle it.

February 2023 Vuln of the Month

February Vuln of the Month: CVE-2022-37061

February's Vuln of the Month is special because for once, CVSS and the Kenna Risk Score are in alignment. Ready why this matters.

Photo by Joana Godinho on Unsplash

Cybersecurity Best Practices

Reactive vs. Proactive Security: Which Holds In a Threatening Future?

We break down reactive versus proactive security, how each approach handle breaches, and the capabilities that underscore security resilience.

Photo by Kanhaiya Sharma on Unsplash

Threat Intelligence

By the Numbers: 2022 CVE Data Review

To help organizations improve their vulnerability management strategies, we've rounded up some key 2022 CVE data findings.

Photo by Matthew Schwartz on Unsplash

Cybersecurity Best Practices

The 5 Remediation Metrics Your Program is Missing

Discover the five metrics you need to quantify how well your organization is managing threats and drive down risk.

January 2023 Vuln of The Month

January Vuln of the Month: CVE-2022-44698

A Windows vulnerability that has the potential to cause headaches for Microsoft shops that aren’t up to date on their patches.

5 Things Every CIO Should Know About VM

Read this eBook to learn what a modern vulnerability management approach means to your IT operation. You discover how it helps CIOs like you create more efficient and effective teams while reducing your company’s overall risk profile.

Photo by Planet Volumes for Unsplash

Risk-Based Vulnerability Management

New Year, New Public Sector Vulnerability Management Goals

Start 2023 off right and make these critical changes to your vulnerability management program to achieve compliance with CISA BODs.

Photo by Vidar Nordli-Mathisen on Unsplash

May 2023 Be Your Year of Resilience

As the stakes continue to rise, the need for organizational and security resilience is at an all-time high.

API Guy: Uploading a File to a Connector

API Guy: Uploading a File to a Connector

Our very own API guy unpacks how to upload a file to a connector and a new Python CSV to Kenna Data Importer (KDI) JSON.

DECEMBER Vuln of the Month: CVE-2022-41128

DECEMBER Vuln of the Month: CVE-2022-41128

A serious Windows vulnerability is December’s Vuln of the Month. Ready why this RCE scripting vuln can do a lot of damage.

API Guy: Extracting Talos Zero Day Information

API Guy: Extracting Talos Zero Day Information via Kenna APIs

The Kenna Security API Guy is back to explain exactly how to extract zero day Talos information using Kenna APIs.

Photo by Eduard Labar on Unsplash

Cybersecurity Best Practices

Common Hurdles That Hamstring Vulnerability Management Maturity—And How to Overcome Them

Two key capabilities will help you evolve your vulnerability management program, lower your risk posture, and achieve remediation nirvana.